Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233322e302f32342d3234203d3e203231383539.roa
File: 34362e3130322e3233322e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: ZvPvWt1j5lUYYsLni21fCkPRCoBG56zhAsr2nDGnUAg=
Subject key identifier: FC:27:63:2C:E4:02:E3:AC:C0:81:5E:91:64:9C:C9:FB:58:B3:FA:36
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 6DFAACC5D7DF8760FE0D717782C138DE8A9D4420
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233322e302f32342d3234203d3e203231383539.roa
Signing time: Tue 19 Dec 2023 09:47:31 +0000
ROA not before: Tue 19 Dec 2023 09:42:31 +0000
ROA not after: Tue 17 Dec 2024 09:47:31 +0000
asID: 21859
IP address blocks: 46.102.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:fa:ac:c5:d7:df:87:60:fe:0d:71:77:82:c1:38:de:8a:9d:44:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Dec 19 09:42:31 2023 GMT
Not After : Dec 17 09:47:31 2024 GMT
Subject: CN=FC27632CE402E3ACC0815E91649CC9FB58B3FA36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:48:ea:db:a5:c4:4c:b7:4d:9a:eb:c7:73:a6:
f9:c6:58:81:2c:05:07:ff:95:16:68:95:68:c4:6e:
a9:81:f8:f6:ce:76:54:6d:6b:73:f5:32:84:8a:c4:
2e:e9:4e:1e:d8:cc:f8:5f:db:01:84:ea:4a:6f:a2:
8e:80:0b:94:b9:39:d4:78:e1:93:a6:83:5e:e6:34:
73:dc:47:c3:bf:20:e7:e8:a1:5e:a5:a3:65:43:08:
dc:e9:04:94:84:2b:b9:5c:6a:3d:d9:9a:0d:4b:d6:
d6:b3:b3:c8:9e:db:08:60:ec:72:80:04:3a:62:67:
6c:41:76:26:07:9e:2a:65:5d:2d:be:92:3a:0e:56:
b1:9e:5d:0a:8b:05:0e:b9:e9:1b:a8:42:98:af:ca:
5e:23:39:6a:72:dc:01:4c:ab:18:a0:05:e1:48:a4:
ca:d9:58:97:65:66:fb:9f:cc:78:46:fc:fa:fb:4c:
28:15:9b:f5:6a:5a:f6:14:af:41:ec:c0:d2:21:74:
f8:8e:ac:37:a1:d4:60:eb:7c:d8:6e:e9:5e:f3:f0:
65:e9:0e:c8:55:19:c6:04:2a:7c:9e:75:14:4d:06:
a9:5e:57:f8:a9:fc:42:4a:49:2e:79:da:a2:c3:10:
64:44:48:5e:cd:cb:cb:bf:5d:c1:d8:ae:af:1e:82:
21:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:27:63:2C:E4:02:E3:AC:C0:81:5E:91:64:9C:C9:FB:58:B3:FA:36
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233322e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:16:96:cb:8d:52:49:93:ba:05:6d:de:e2:6d:03:9a:db:ec:
52:cf:2b:9e:15:54:08:39:5c:01:3d:9d:48:c6:6c:34:0d:46:
35:2c:f0:21:05:16:c2:74:e5:f3:8e:78:c6:ec:ec:19:16:f0:
76:03:84:48:9b:26:19:a7:6d:83:98:13:74:21:00:26:e3:50:
80:fd:98:0a:b4:3f:be:39:b6:7d:44:b0:5e:c5:26:02:9f:16:
6e:20:05:02:db:cc:e4:7e:2f:0a:4d:29:ec:95:c7:3e:e6:5a:
75:25:c7:d9:02:4f:73:6a:25:c8:2f:5b:92:8f:4d:13:b2:de:
b8:20:86:37:ff:9e:43:29:01:0e:b2:39:e8:07:55:6a:1b:cb:
84:9a:71:b0:13:58:a1:18:63:d9:87:40:48:73:56:7d:62:e2:
28:71:58:db:a1:48:d4:41:eb:1b:1f:85:47:90:0e:df:29:43:
2e:4d:f5:75:3f:1c:9c:d8:a3:71:74:f8:04:01:af:d5:50:a8:
70:56:3d:b7:38:24:85:04:e4:ff:38:43:94:ad:aa:ad:8e:d3:
3a:9e:33:21:d7:85:e8:e3:43:db:bb:fb:10:02:90:f6:21:41:
d5:65:29:e7:cc:af:bb:01:bc:40:09:97:b9:8c:b4:cb:d8:a6:
8a:3a:cd:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 00:49:08 2024 by rpki-client on console-fra.rpki-client.org